com.jiuku.jesus.activity.SplashActivity
android.intent.action.MAIN
com.tencent.tauth.AuthActivity
android.intent.action.VIEW
android.intent.action.VIEW
Static task
static1
1 signatures
General
-
Target
fuyin.apk
-
Size
34.4MB
-
MD5
53cb0262ee469413057913803be4cdc7
-
SHA1
f462b18c25497a30d2e40c870677d35d503e635c
-
SHA256
0ff0f4c50a668ab81ae911c5fde8872ba01f0bb55fdfb892b68efce825159686
-
SHA512
f33494051b828ef41bdbfb622e84fe8a7c6e456a0cfe7a8c45e4e710c440167330c519175554b84209a5318e49cb1b50bd8fb720a982c7587616102c15511f8d
-
SSDEEP
786432:7pg33BXW8a6w6L7sVWF9ktFFlWW+S8D/fwqOk3piM7lX3SSxU5kC:1gHddL7sVumZ+SigqOk3piMoSxWkC
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 9 IoCs
description ioc Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to record audio. android.permission.RECORD_AUDIO Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE Required to be able to access the camera device. android.permission.CAMERA Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION
Files
-
fuyin.apk.apk android arch:arm64 arch:arm arch:x86 arch:x64
Password: spf200
com.jiuku.jesus
com.jiuku.jesus.activity.SplashActivity
Activities
Permissions
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.RECORD_AUDIO
android.permission.GET_TASKS
android.permission.REORDER_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_NETWORK_STATE
android.permission.VIBRATE
android.permission.RESTART_PACKAGES
android.permission.WAKE_LOCK
android.permission.BLUETOOTH
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_USER_PRESENT
com.jiuku.jesus.openadsdk.permission.TT_PANGOLIN
android.permission.QUERY_ALL_PACKAGES
com.asus.msa.SupplementaryDID.ACCESS
freemme.permission.msa
Receivers
Services
com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService
com.ss.android.socialbase.downloader.remote
-
.appkey
-
0.gif.gif
-
WebViewJavascriptBridge.js.js
-
bdxadsdk.jar.apk android
Password: spf200
-
c9b77abd881f7f9be4fc47b4e4b965a2.apk android arch:arm arch:arm64
Password: spf200
com.byted.pangle
com.bytedance.sdk.openadsdk.core.activity.base.TTWebPageActivity
Activities
Permissions
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
com.asus.msa.SupplementaryDID.ACCESS
Receivers
Services
-
dynamic_default.json
-
tt_mime_type.pro
-
tt_na.czl
-
tt_nd.elf linux x86
-
call.bnf
-
city.json
-
com.tencent.open.config.json
-
css.css
-
daily_bread.db
-
ewm.jpg.jpg
-
gdtadv2.jar.apk android arch:arm64 arch:arm
Password: spf200
-
yaq.sec
-
yaq2.sec
-
yaq3_0.sec.dex
-
yaqsdkcookie
-
geo_global_ca.cer
-
grammar_sample.abnf
-
h5_qr_back.png.png
-
hnlhol.dat
-
iattest.wav
-
keys
-
libjiagu.so.elf linux arm
-
libjiagu_a64.so.elf linux aarch64
-
libjiagu_x64.so.elf linux x64
-
libjiagu_x86.so.elf linux x86
-
libwbsafeedit.elf linux arm
-
libwbsafeedit_64.elf linux aarch64
-
libwbsafeedit_x86.elf linux x86
-
libwbsafeedit_x86_64.elf linux x64
-
link.html.html .js
-
product.png.png
-
purchase.png.png
-
recognize.xml
-
rem.js.js
-
reset.css
-
shengjing
-
style.css
-
test.html.html .js
-
tie_bg.png.png
-
top.jpg
-
top.png.png
-
userwords
-
voice_bg.9.png.png
-
voice_empty.png.png
-
voice_full.png.png
-
waiting.png.png
-
warning.png.png
Android Permissions
fuyin.apk
Permissions
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.RECORD_AUDIO
android.permission.GET_TASKS
android.permission.REORDER_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_NETWORK_STATE
android.permission.VIBRATE
android.permission.RESTART_PACKAGES
android.permission.WAKE_LOCK
android.permission.BLUETOOTH
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_USER_PRESENT
com.jiuku.jesus.openadsdk.permission.TT_PANGOLIN
android.permission.QUERY_ALL_PACKAGES
com.asus.msa.SupplementaryDID.ACCESS
freemme.permission.msa